Staying One Step Ahead of Security Vulnerabilities

Keeping up-to-date on new threats and software updates is critical to maintaining a secure network

You’ve installed a firewall andintrusion prevention system (IPS) to secure the perimeter of your small business network. You’ve configured your protection measures to filter dangerous traffic, secure remote access, and control who can access your network. You’ve added antivirus and antimalware software to every computer and laptop in your organization. Your business is now safe from attackers lurking on the Internet, right?

Well, yes, for now. But if you don’t keep up with the constantly changing world of security vulnerabilities, your network won’t stay locked down for long.

New network vulnerabilities and security attacks are continually cropping up. Technology vendors discover new holes and release patches to their products’ firmware and software on a regular basis. But attackers are moving just as fast to exploit those holes and invent new ways to break into your network.

There are three ways you can stay on top of this moving target. Depending on how comfortable you are handling your network security, you can take a completely DIY approach by following vendors’ advisories, subscribe to a service that will inventory and automatically update your software, or contract with a security professional to manage security updates for you.

Taking the DIY approach

If you have the resources and the inclination, you can squarely hit the moving target of security vulnerabilities on your own. First, start by subscribing to the security advisories that each vendor provides free of charge for their networking gear, computers, and software. Many companies publish an advisory for any issue impacting an individual product, so it’s possible you’ll receive a glut of alerts that don’t pertain to your network. So, make sure you know which products are installed on your network and just focus on the relevant advisories.

Also, make sure to check your vendors’ websites for new and any missed security patches, which you can usually download for free. And be sure to enable any automatic updates available through your installed software, including operating systems and firmware.

Larger vendors may provide even more security resources on their websites. For instance, the Cisco Security Intelligence Operationsconsolidates a variety of security resources, including clickable lists of current security threats, event responses, and security advisories. You also can sign up to receive text messages about security updates, virus alerts, and RSS feeds. Like most advisories, this information is highly technical and is geared toward larger companies with in-house security expertise, but the information is just as important to businesses of every size.

If you want some help with security updates but don’t want to invest a lot of money, you can subscribe to a service that provides an application that can help you find and automate software updates on your computers. Two popular free services are CNETTechTracker and Secunia Personal Software Inspector (PSI). These applications compare the software on a computer against a continuously refreshed database of vendors’ software updates and patches. The service then generates a report from which you can download the necessary software updates. Using your favorite search engine, similar “vulnerability management” services are available for your network infrastructure.

Bringing in outside help

Keeping up with the latest security threats can be a full-time job. Sometimes the best way to stay current on vulnerabilities is to enlist the help of an expert, such as a local Cisco reseller who specializes in security. A partner can inventory your network devices and systems, monitor for security holes and other issues, and install the appropriate patches or updates as needed.

When it comes to network security, the more informed you are, the better decisions you can make. How is your small business keeping up with ever-changing security threats and network vulnerabilities?

The Cisco Small Business surveillance products were retired as part of the recent overall Cisco restructuring and realignment to focus on the core technologies of switching, routing, voice and wireless. While this refocusing has discontinued the Cisco Small Business surveillance products, Cisco remains committed to delivering affordable solutions for small business needs, and continues to stand apart from the competition as the only vendor that can provide comprehensive small business networking and communications solutions, including switching, routing, wireless, security, voice and conferencing.
For consideration, the broader Cisco Physical Security solution portfolio provides a comprehensive portfolio of IP cameras, video surveillance and integrated physical security products that can meet the needs of a broad range of customers, to provide video surveillance, access control, incident response, and integrated safety and security solutions for small business/branch locations to larger campus environments. For more information about those products refer to http://cisco.com/go/physec

Some of the individuals posting to this site, including the moderators, work for Cisco Systems. Opinions expressed here and in any corresponding comments are the personal opinions of the original authors, not of Cisco. The content is provided for informational purposes only and is not meant to be an endorsement or representation by Cisco or any other party. This site is available to the public. No information you consider confidential should be posted to this site. By posting you agree to be solely responsible for the content of all information you contribute, link to, or otherwise upload to the Website and release Cisco from any liability related to your use of the Website. You also grant to Cisco a worldwide, perpetual, irrevocable, royalty-free and fully-paid, transferable (including rights to sublicense) right to exercise all copyright, publicity, and moral rights with respect to any original content you provide. The comments are moderated. Comments will appear as soon as they are approved by the moderator.